$ rpki-client -vvf rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft File: hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft (raw, json) Hash identifier: Qw75PJ1E9Ihqje+olEgcFlBr9wLLf6jxoZHHrXbbxjc= Subject key identifier: CB:E9:57:FA:C6:B5:5F:24:EE:20:6F:98:8D:D1:D6:4C:0E:BD:D4:5E Authority key identifier: 85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB Certificate issuer: /CN=A91958BE/serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Certificate serial: 019A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft Manifest number: 0196 Signing time: Fri 09 May 2025 02:36:49 +0000 Manifest this update: Fri 09 May 2025 02:36:48 +0000 Manifest next update: Fri 16 May 2025 02:36:48 +0000 Files and hashes: 1: hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl (hash: 43r87Ix1IfZUwWLBn/1T/2wI7HUcgtroqXK2hvYuWT4=) 2: 54FB2C8CD61711EEB983D919C4F9AE02.roa (hash: QVA6cnHl8Ur5a0kDBgQcj4pP7Ka7QThHbgUyDhuNztQ=) 3: 5576D030D61711EEB983D919C4F9AE02.roa (hash: El263VSWEusvqzTfH9aiwLLR8nJJvv9GT054yDKZA+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 02:36:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91958BE, serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Validity Not Before: May 9 02:36:48 2025 GMT Not After : May 16 02:36:48 2025 GMT Subject: CN=681d6a40-31e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:81:3d:15:a1:ce:45:cd:94:c1:50:9c:b2:90: 41:5c:2c:90:ee:9d:62:6d:30:1b:e8:54:41:49:23: 3c:7b:62:e8:5c:86:60:00:c6:e2:87:be:19:1b:2f: 48:0a:b1:01:fe:e5:9e:03:e4:28:58:71:88:dc:b0: d5:8d:bd:b6:ec:14:88:d7:bc:20:08:6a:7f:ab:42: 04:86:8b:22:b2:f7:f3:9e:1a:de:d7:ac:7e:41:81: d6:f3:0e:63:a3:6d:75:30:43:64:b5:56:6a:04:c1: 12:fc:f1:7f:1c:a8:cf:2e:79:e0:b4:17:dc:eb:bb: f2:78:6e:6c:43:fc:b4:fc:c7:6d:e7:5b:6f:24:9e: 2c:98:5d:c4:1f:18:a7:09:84:2d:d9:63:1e:58:e8: be:2b:bd:a4:01:49:a8:02:a6:4a:79:f0:c8:d1:7c: 46:ca:f6:bb:92:a8:f3:0c:f8:6b:1a:31:2f:84:ca: 6e:4f:5a:99:97:17:b2:42:17:7e:ac:4f:6c:7b:e0: 42:e8:0b:c6:d4:2a:46:72:0f:f6:c2:7d:94:bf:63: 5b:93:de:81:f3:30:40:49:9c:90:df:95:f4:3f:23: c3:66:e1:77:fc:2d:64:30:27:5a:59:ca:44:8b:6f: 66:b3:35:61:ca:d9:60:3b:8a:52:f6:a2:57:ef:12: 40:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:E9:57:FA:C6:B5:5F:24:EE:20:6F:98:8D:D1:D6:4C:0E:BD:D4:5E X509v3 Authority Key Identifier: keyid:85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:f3:6f:49:77:0e:b8:11:95:f8:ed:30:c1:d4:d5:44:eb:77: 41:c3:bf:c1:3b:4f:b7:f5:9c:e3:c5:5d:a7:81:ab:95:14:4c: 9d:37:40:07:bf:cf:f3:18:4e:c7:c8:fe:74:b8:21:ad:73:3e: b1:66:79:80:9b:f4:83:76:5f:b2:5d:32:30:d1:e8:8d:4e:f3: b6:31:cf:83:95:7d:69:f9:6c:ff:7f:3c:9d:a4:ef:d8:03:4a: b0:af:3f:df:aa:ed:dc:a2:42:98:96:d1:c3:f8:b1:dc:18:2c: e7:1f:de:ff:20:49:ca:46:b4:03:9f:30:aa:ee:38:5e:bb:07: 19:e0:4f:e1:9d:15:44:cd:03:ca:dc:1c:6e:5f:a9:c3:b9:f3: 99:ba:93:26:bb:d2:c4:e8:51:8e:44:67:a2:29:97:a6:c0:2a: 78:43:98:02:73:b2:f3:9f:86:42:30:1e:5f:a9:88:1f:94:fe: c0:15:a7:32:4a:36:c5:8f:54:e3:82:c9:01:29:2a:e9:7c:00: e4:da:68:a8:4e:97:91:dd:7b:01:d3:a0:51:84:f7:5c:3a:71: d3:ae:6b:b8:8f:91:72:f0:ac:c7:cf:7a:1d:02:34:7e:58:6e: 0e:22:fc:47:47:07:ed:2c:30:20:ef:44:fe:6b:1d:d8:a5:9c: 9c:60:b3:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU4QkUxMTAvBgNVBAUTKDg1NEZFNzI3NTM2MEQwNzgxMEFGRkJBNkMyOEZGRjIz NTgyQTIwRUIwHhcNMjUwNTA5MDIzNjQ4WhcNMjUwNTE2MDIzNjQ4WjAYMRYwFAYD VQQDEw02ODFkNmE0MC0zMWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApoE9FaHORc2UwVCcspBBXCyQ7p1ibTAb6FRBSSM8e2LoXIZgAMbih74ZGy9I CrEB/uWeA+QoWHGI3LDVjb227BSI17wgCGp/q0IEhosisvfznhre16x+QYHW8w5j o211MENktVZqBMES/PF/HKjPLnngtBfc67vyeG5sQ/y0/Mdt51tvJJ4smF3EHxin CYQt2WMeWOi+K72kAUmoAqZKefDI0XxGyva7kqjzDPhrGjEvhMpuT1qZlxeyQhd+ rE9se+BC6AvG1CpGcg/2wn2Uv2Nbk96B8zBASZyQ35X0PyPDZuF3/C1kMCdaWcpE i29mszVhytlgO4pS9qJX7xJApwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvpV/rG tV8k7iBvmI3R1kwOvdReMB8GA1UdIwQYMBaAFIVP5ydTYNB4EK/7psKP/yNYKiDr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NThCRS83QzdGQjJGRUMy MTkxMUVEODAyNTZGNEVDNEY5QUUwMi9oVV9uSjFOZzBIZ1FyX3Vtd29fX0kxZ3FJ T3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hVX25KMU5nMEhnUXJfdW13b19fSTFncUlPcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NThCRS83QzdGQjJGRUMyMTkxMUVEODAyNTZGNEVDNEY5QUUwMi9oVV9uSjFOZzBI Z1FyX3Vtd29fX0kxZ3FJT3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+829Jdw64EZX47TDB1NVE63dBw7/BO0+39ZzjxV2ngauVFEydN0AH v8/zGE7HyP50uCGtcz6xZnmAm/SDdl+yXTIw0eiNTvO2Mc+DlX1p+Wz/fzydpO/Y A0qwrz/fqu3cokKYltHD+LHcGCznH97/IEnKRrQDnzCq7jheuwcZ4E/hnRVEzQPK 3BxuX6nDufOZupMmu9LE6FGORGeiKZemwCp4Q5gCc7Lzn4ZCMB5fqYgflP7AFacy SjbFj1TjgskBKSrpfADk2mioTpeR3XsB06BRhPdcOnHTrmu4j5Fy8KzHz3odAjR+ WG4OIvxHRwftLDAg70T+ax3YpZycYLNl -----END CERTIFICATE-----Generated at Fri May 9 18:27:05 2025 by rpki-client